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Abstract. This paper introduces a new framework for data hiding se- 
curity. Contrary to the existing ones, the approach introduced here is 
not based on probability theory. In this paper, a scheme is considered 
as secure if its behavior is proven unpredictable. The objective of this 
study is to enrich the existing notions of data hiding security with a new 
^^ . rigorous and practicable one. This new definition of security is based on 

the notion of topological chaos. It could be used to reinforce the con- 
fidence on a scheme previously proven as secure by other approaches 

Y^ • and it could also be used to study some classes of attacks that currently 

cannot be studied by the existing security approaches. After presenting 
the theoretical framework of the study, a concrete example is detailed in 
order to show how our approach can be applied. 

> 
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If) • 1 Introduction 

O 

^~^ ' In past decades, the studies in the information hiding domain have almost ex- 

clusively been focused on robustness [I], [S]- Security has emerged in the last 
years as a new interest in this domain (2] , [Ml , [2S| ■ Security and robustness are 

k> I neighboring concepts without clearly established definitions [53]. Robustness is 

^ • often considered to be mostly concerned by blind elementary attacks, whereas se- 

5t ! curity is not limited to certain specific attacks. Security encompasses robustness 

and intentional attacks [T3] , [20] . The attempts to define the differences between 
robustness and security, to clarify the classes of attacks and to give some consis- 
tence to the notion of security, illustrates the recent important concern to bring 
a rigorous theoretical framework for security in data hiding. 

In the framework of watermarking and steganography, security has seen sev- 
eral important developments since the last decade. Nevertheless, several open 
questions still remain. For example, the current theoretical approach requires 
strong hypotheses on the covertext and these hypotheses are quite difficult to 
evaluate in practice. Moreover, even if several security classes have been iden- 
tified since the first classification of attacks, only a small part of them can be 
easily studied within this framework. In the existing approach, when a same 



hidden message is embedded into several covertexts, information leak is studied 
in terms of probability. If the leak is important, then the scheme is considered 
as insecure. In this paper we are interested in the evaluation of unpredictability 
of a data hiding scheme: this last is considered as secure if it is proven to be 
unpredictable. This new framework can be used to study some classes of attacks 
that are difficult to investigate in the existing security approach. It also enriches 
the variety of qualitative and quantitative tools that evaluate how strong the 
security is, thus reinforcing the confidence that can be put on a given scheme. 
Indeed, let us suppose that Eve, an attacker, observes the behavior of a data 
hiding machine. If there is no information leak, when Eve applies an input on 
the machine, and if nothing can be understanding when the input is changing, 
because of the unpredictable behavior of the machine, so she cannot deduce 
much things from these observations. This claim is discussed more rigorously in 
Section g] 

The rest of this paper is organized as follows. In Section [21 related work con- 
cerning data hiding security is recalled. Our contribution in relation to existing 
framework is explained. In Section [31 the definition of chaos used in this paper 
is presented, the notion of chaotic-security is defined and the feasibility of its 
study in real-world applications is established. An illustrative example is given 
in Section [31 the chaotic-security study of various spread-spectrum data hiding 
schemes is presented and the level of security is qualitatively and quantitatively 
evaluated. The link between chaotic-security and stego-security is discussed and 
the impact of our study in regard to various classes of attacks is detailed. The 
paper ends with a conclusion where our contribution is summarized, and planned 
future work is discussed. 

2 Related work and contribution 

2.1 Related work 

The first fundamental work in security was made by Cachin in the late 90's [9] 
in the context of steganography. Cachin interprets the attempt of an attacker 
to distinguish between an innocent image and a stego-content as a hypothesis 
testing problem. In this document, the basic properties of a stegosystem are 
defined using the notions of entropy, mutual information, and relative entropy. 
Mittelholzer [23] , inspired by the work of Cachin, proposed the first theoretical 
framework for analyzing the security of a watermarking scheme. 

These efforts to bring a theoretical framework for security in steganography 
and watermarking, have been followed up by Kalker ^U\ who tries to clarify 
the concepts (robustness vs. security) and the classifications of watermarking 
attacks. This work has been deepened by Furon et al. |16], who have trans- 
lated Kerckhoffs' principle (Alice and Bob shall only rely on some previously 
shared secret for privacy) from cryptography to data hiding. They used Diffie 
and Hellman methodology, and Shannon's cryptographic framework |29j . 

These attacks have been classified into categories, according to the type of 
information Eve has access to [12], 1271: 



— Watermarked Only Attack (WOA): the attacker has access only to water- 
marked contents. 

— Known Message Attack (KM A): the attacker has access to pairs of water- 
marked contents and corresponding hidden messages. 

— Known Original Attack (KOA): occurs when an attacker has access to several 
pairs of watermarked contents and their corresponding original versions. 

— Constant-Message Attack (CMA): the attacker observes several watermarked 
contents and only knows that the unknown hidden message is the same in 
all contents. 

Each category of attack conducts to different security classes. For example, 
four classes of security are defined in [TT] for WOA, namely insecurity, key- 
security, subspace-security and stego-security 

Barni et al. proposed a different approach to watermarking security, based 
on games with some rules concerning the public available information [B], con- 
ducting to a definition of security level similar to that proposed by Furon. Lastly, 
Cayre et al. proposed in [12] the Fisher Information Matrix to quantify security 
in this context. 



2.2 Some reasons why unpredictability can improve security 

Stego-security is clearly relevant and required in WOA setup: Eve has only ac- 
cess to watermarked contents and due to stego-security, it is impossible for her 
to decide whether a content has been processed through the embedding func- 
tion or not. So in WOA setup, a stego-secure algorithm can face Eve's attacks. 
However, such a framework is not as useful to counteract KOA, KMA and CMA 
classes of attacks. In these setups. Eve tries to take benefits of its observations 
of watermarked contents, when she changes some initial conditions in the data 
hiding scheme. She desires having a sufficient understanding of the scheme and 
to be able to predict its behavior. 

This knowledge can serve an attacker in various situations, for example when 
trying to counteract digital rights management (DRM), or in a man-in-the- 
middle attack through an hidden channel. Let us explain for example how Eve 
can try to achieve a man-in-the-middle attack by taking benefits of the pre- 
dictable behavior of a scheme in KOA setup. We suppose that Alice and Bob 
communicate together through an hidden channel into some innocent master 
paintings. Eve has thus access to original and watermarked paintings, by using 
a base of knowledge and observing the communication channel. If she is able to 
predict the behavior of the data hiding scheme used by Alice and Bob, so when 
Alice send a watermarked painting Po to Bob: Eve intercepts Po, use the same 
painting P than Alice, and tries to predict how its own message should change 
P. The result of this prediction is sent to Bob. It is true that the chances for 
success for this attack are low, but these chances increase with the predictability 
of the data hiding scheme, thus revealing a security failure. 

Let us now suppose that Eve wants to attack some DRM. She has access to 
several pairs of watermarks - the copyrights, which are public - and watermarked 



media: we are in KMA setup. In addition, she has access to the data hiding 
machine, but does not have knowledge of a secret key parameter, from which 
the outputs of the scheme are dependent. This key thus determines the way to 
apply the copyright into the media. She wants to insert its own copyright in this 
protected media, to make it impossible to determine whether Eve is the owner 
or not. She does not know exactly how copyrights are applied on original media, 
because the DRM machine works with a secret key. However Eve can reach its 
goal if she is able to predict the behavior of the copyright machine: she can 
approximately determine what should be the watermarked media with its own 
copyright. As a conclusion, in various situations, unpredictable schemes should 
be recommended to improve security in data hiding. 

2.3 Contributions in this paper 

In this paper, a novel theoretical framework for data hiding security is proposed. 
A data hiding scheme is considered here as a machine, whose detail is public. This 
machine receives hidden messages and original contents from the outside world 
and returns stego-contents. In our point of view, security of the scheme depends 
on the unpredictable behavior of the machine. To give consistence to the notion of 
unpredictability, this machine is modeled as a dynamical system: 0;"+^ ~ fix") 
(where a;" denotes the n*^ term of the sequence x) . This reformulation is always 
possible, as it is proven in Section 13.21 

Thus, unpredictability refers to some topological or ergodic aspects of / 
taken from the mathematical theory of chaos, as defined by Devaney [15], Li- 
Yorke [12], or Adler [5] for example. This new theoretical framework for security 
respects Kerckhoffs'principle. It is based on a topological description of data 
hiding, whereas most studies in this field usually have used the theory of proba- 
bility [5S] , [T7] . The goal of this research work is to give additional contribution 
to the variety of security evaluations which should lead to better confidence into 
data hiding schemes. 

Compared to the information-theoretic model for steganography proposed 
by Cachin |S] and extended for example by Ker [5T], chaotic-security appears 
to be a little more relevant and probably more realizable than stego-security 
in some particular situations, for example when chaotic sequences are used in 
data hiding schemes. This framework can check whether the claim of a chaotic 
behavior for a data hiding scheme can be verified or not. Indeed, to our best 
knowledge, stego-security studies often take place in WOA category and are re- 
lated to Simmons' prisoners' problem |5D]. In this problem, Alice and Bob are 
in jail and want to plan an escape by exchanging hidden messages in innocent- 
looking cover contents. These messages are conveyed by Eve, a warden who tries 
to benefit from any information leak resulting by the use of the same secret key. 
Quoting Cayre and Bas in [TT]: "Like other works, we consider Alice and Bob 
use only one key. Of course, in real applications, especially in steganography, it 
is highly desirable to change the key at every communication between Alice and 
Bob." In addition, a probabilistic model of the covertext is needed and, as stated 
by Cachin in |5], "assuming the existence of a covertext distribution seems to 



render our model somewhat unrealistic for the practical purpose of steganogra- 
phy". The new framework we propose does not suppose any assumption of this 
kind, works with simple or multiple secret keys and is not restricted to some 
category of attacks. Our approach is explained in detail in the following section. 



3 Chaos for data hiding security 

We will consider that a data hiding scheme is secure when its behavior is unpre- 
dictable. The mathematical domain that studies unpredictability is the theory 
of chaos, which describes the behavior of a dynamical system in topological 
terms. One of the most reputed description of such a chaotic behavior is due 
to Devaney [T3]. It is recalled in the next subsection, whereas the notion of 
chaotic-security deduced from this definition is presented in Subsection 13.21 

3.1 Devaney 's chaotic dynamical systems 

Consider a metric space {X,d) and a continuous function / on X. Let f'' = 
/ o ... o / denotes the fc*'' composition of a function /. Quoting Devaney in |15| . 

Definition 1. f is said to be topologically transitive if, for any pair of open 
sets U,V C X, there exists k > such that f''{U) CiV ^ 0. 

Definition 2. An element (a point) x is a periodic element (point) for f of 
period n S IN*, if f"'{x) — x. The set of periodic points of f is denoted Per{f). 

Definition 3. {X,f} is said to be regular if the set of periodic points is dense 
in X , 

Vx e X,\te >0,3pePer{f),d{x,p) ^ e. 

Definition 4. / has sensitive dependence on initial conditions if there exists 
^ > such that, for any x G X and any neighborhood V of x, there exists y € V 
andn^O such that \f"(x) - f"{y)\ > S. 

S is called the constant of sensitivity of f . 

Definition 5. A function f : X — > X is said to be chaotic on X if {X, /} 
is regular, topologically transitive and has sensitive dependence on initial condi- 
tions. 

When / is chaotic, then the system {X, f}is chaotic and quoting Devaney |15) : 
"it is unpredictable because of the sensitive dependence on initial conditions. It 
cannot be bren down or simplified into two subsystems which do not interact 
because of topological transitivity. And in the midst of this random behavior, we 
nevertheless have an element of regularity". Fundamentally different behaviors 
are consequently possible and occurs in an unpredictable way. 



3.2 Chaotic-security 

As stated before, we believe that an unpredictable behavior is required for a 
data hiding scheme to satisfy an efficient level of security. This unpredictability 
makes it difficult to determine whose coefficients of the cover media will be al- 
tered during the embedding of the watermark, which limits the possibilities of 
Eve in KOA and KMA attacks. The scheme should at least be chaotic according 
to Devaney: this property will improve the ability of Alice and Bob to withstand 
attacks. Indeed, it will be as difficult for Eve to find the hidden message after n 
iterations than to forecast the weather after n days without mistakes: because 
of chaos, this last becomes impossible to do in practice when n increases. Due 
to Devaney's chaos, such a "chaotic-secure" information hiding scheme will thus 
satisfy sensitive dependence to the initial condition, regularity and transitivity. 
Sensitivity to initial conditions is useful, among other, to withstand sensitivity 
attack [U (it can be noticed that, in the context of the sensitivity attack, various 
strategies have been already employed HH]). In addition, sensitivity is helpful to 
achieve authentication, because the watermark's embedding will be highly de- 
pendent on any changes of the carrier image. Moreover, fragile data hiding is 
achieved with a large constant of sensitivity. Transitivity trends to improves ro- 
bustness: for example. Eve cannot hope to remove the watermark by cropping 
the media. Indeed, the system will visit all the space, so the watermark will be 
uniformly distributed on the whole media. This property improves authentica- 
tion, as this last can be achieved by studying any part of the media: theoretically 
speaking, authentication still remains possible in a cropped media. Transitivity 
trends to improve security too. as Eve cannot have a better understanding of 
the scheme, cannot reduce its complexity by studying only a well chosen reduced 
part of the watermarked content. Lastly, transitivity and regularity lead to un- 
predictability, which helps Alice and Bob to withstands KOA and KMA attacks. 
For these reasons we believe that this new point of view could enrich the field 
of security in data hiding. 

Let us now present more rigorously the new notion of chaotic-security. To 
check whether an existing data hiding scheme is chaotic or not. we propose 
firstly to write it as an iterate process a;"+^ = /(a;"). It is possible to prove 
that this formulation can always be done. Let us consider a given data hiding 
algorithm. It is always possible to translate it as a Turing machine and this last 
can be written as x"''^^ = /(x") by the following way. Let {w, i, q) be the current 
configuration of the Turing machine (Fig. [Ij, where w = tl~"w(0) . . . w(A:)jJ'^ is 
the paper tape, i is the position of the tape head, q is used for the state of the 
machine, and 6 is its transition function. We define / by: 

- f{w{Q) . . . w{k),i, q) = (^(O) . . . ^(i - l)aw{i + l)w{k),i + 1, q'), 
iiS{q,w{i)) = (g',a, -^), 

- /(u'(O) . . . w{k),i, q) = {w{0) ...w{i~ l)aw{i + l)w{k),i - 1, q'), 
iid{q,w{i)) = {q',a,^). 



Thus the Turing machine can be written as an iterate function x"''^^ = f{x") 
on a weh-defined set X, with a;° as the initial configuration of the machine. We 
denote by T{S) the iterative process of a data hiding scheme S. 



# w(i) # 



Fig. 1. Turing Machine 



Let d be a relevant distance on X. So the behavior of this dynamical system 
can be studied to know whether the data hiding scheme is unpredictable or not. 
This leads to the following definition. 

Definition 6. An information hiding scheme S is said to be chaotic- secure on 
{X , d) if its iterative process T{S) has a chaotic behavior according to Devaney. 

Theoretically speaking, chaotic security can always be studied, as it only 
requires that the two following points are satisfied. 

— Firstly, the data hiding scheme must be written as an iterate function on a 
set X. We have stated that this is possible for any given scheme. 

— Secondly, a metric or a topology must be defined on X. This is always pos- 
sible, for example by taking either the discrete or the trivial topology, even 
though these last are not really relevant for the aims we want to reach. 

Chaotic-security is clearly impacted by the choice of the distance or topology 
on X and this dependence must be regarded with attention. It is evident that 
the choice of the metric (or of the topology) must be justified, for example by 
establishing a strong link between the proximity of two points and the aims 
that data hiding attempts to reach. However, some topologies are more natural 
and reasonable than others, and equivalence of topologies reduces the impact 
of this choice. In addition, it can be remarked that stego-security supposes the 
same kind of hypothesis: dealing with probabilities implies the definition of a 
sigma-algebra. To our best knowledge, the Borel algebra is always chosen, even 
though this choice is neither stated, nor justified. As a topological space is needed 
to define Borel sets, we can claim that at least when a stego-security study is 
possible, so a chaotic study can be realized, with a topology inherited from the 
stego-security study (which justifies its choice). 

In our point of view, the chaotic-security is the lowest level of security for a 
data hiding scheme in terms of unpredictability. This property is required, but 
is not sufficient: it is only the first stage of the evaluation of the unpredictable 



behavior of the scheme. This study must be fohowed by the estabhshnient of the 
hst of chaotic properties that the system presents. Indeed, being unpredictable 
is a tricky thing to define and the number of candidates that give consistence to 
this notion is large. Namely topological and metric entropy, ergodicity, topolog- 
ical mixing, lyapunov exponent, expansivity, transitivity and strong transitivity, 
bifurcation theory, or chaos as defined by Li-Yorke, by Devaney or by Knudsen to 
name a few. As each definition illustrates a particular aspect of an unpredictable 
behavior and has its own interest, each notion of chaos offers a new light on the 
security of a data hiding scheme. Thus we consider that a given data hiding 
scheme will be more secure than another one if it presents a larger number of 
chaotic qualities and if its quantitative values are better. Indeed the properties 
to check is depending on the aims to reach: fragile watermarking, robustness, 
etc. This point is illustrated in the next section and will be largely deepened in 
a future work. 



4 Chaotic-security of spread-spectrum data hiding 
schemes 

4.1 A first proof of chaotic-security 

In what follows, our framework is used to give a first chaotic-security evaluation 
of the well-known spread-spectrum (SS) data hiding techniques [11]. This proves 
that the previous framework is ready for real-world applications and establishes 
a concrete link between chaotic and stego-security notions. 

Let X € E,^" be an host vector in which we want to hide a message m G 
{0; 1}^'=. Nc is the size of the hidden payload (in bits) and N.^ the size of the 
stego or host vector (in samples) . A key /C is used to initialize a PRNG (Pseudo- 
Random Number Generator) to obtain Nc secret carries {u*} taken in R^" . Thus 
in classical SS the watermark signal w is constructed as follows: 

i=0 

where 7 is a given distortion level. The watermarked signal y is then defined by: 

y = X + w (2) 

Let us now suppose that the components of the watermark are bounded by a 
finite value N: max({wj;, i £ [1, iVt,]]}) < N. This bound can be as large as needed, 
however a very large N seems to be contradictory with the aims of a data hiding 

scheme. Let us consider A" = ( [0, N] " ) x R^" and 



GiiS,E))^ia{S);i{S)+E) (3) 



where a is the shift function defined by a : (5")„g]N G I [0, N] " ) — ;■ (5"+^)„g]N G 
( [0, N] " 1 and the initial function i is the map which associates to a sequence, 

/ AT \'^ 

its first term: i : (S'")„eiN G f [0, N]^" j ^ 5" G [0; N]^". 

Spread-spectrum data hiding techniques are thus the result of Nc iterations 
of the following dynamical system: 



and the watermarked media is the second component of X^" . 

Classical SS, i.e. with BPSK modulation [TT], is defined by X" = {S",E^) 
where E'^ is the host vector x and S^ is the sequence 

((-1)™% -°, i-ir'i u\..., i~ir"'-\ u^^-') , (5) 

in which 7 allows to achieve a given distortion, whereas in ISS (Improved Spread 
Spectrum [23])) 5''' is defined by 

(-ir'^-^oT^) , (6) 

11^ II / i=0,...,Na-l 

where a and A are computed to achieve an average distortion and to minimize 
the error probability [TT] . Lastly, in natural watermarking NW, 5° is defined by 

This modulation consists in a model-based projection on the different vectors 
u* followed by a 77— scaling along the direction of u\ Natural watermarking has 
been proven stego-secure in |11| . 

We will prove in what follows that spread-spectrum data hiding schemes are 
chaotic-secure, i.e. that G is chaotic on (<¥, d), thus finding a first chaotic and 
stego-secure algorithm. 

Let doo{A, B) = max {\Ai — Bi\,i ~ 1 . . . iV„} be one of the usual metrics on 
R^" . We define a new distance between two points X = {S,E),Y = {S, E) € X 

by diX,Y) = d^{E,E)+d,{S,S), where d^ S) = ^ ^ ""^q, ■ 

k=0 

The choice of doo on R^" is not important, because of the equivalence of 

norms in finite dimension: as topologies are the same, thus chaotic properties 

does not change by using another distance on R^" . dg has been chosen such that 

d{X, Y) is small when the distance between the watermarked images resulting 

on the spread-spectrum applied on X and Y are close (for any metrics on IR^" , 

9 
as they are all equivalent). Lastly, — is just a normalization value. 

We will now prove that: 



Proposition 1. G is continuous on (X,d). 

Proof. We use the sequential continuity. Let {Sn, E„)n£ri be a sequence of the 
phase space X, which converges to {S,E). We wiU prove that (G(S'„, -E„))„gj^ 
converges to G{S,E). Let us recah that for all n, 5„ is a strategy, thus, we 
consider a sequence of strategies {i.e. a sequence of sequences). 

As d{{SmEn); {S, E)) converges to 0, each distance doo{En,E) and ds{Sn, S) 
converges to 0. 

1. If ^y dooiStS'^) ^ ^ ^^^^^ „ ^ oo, then ^y ^^Ml^ ^ 0. So 

fe=0 k=l 

NZ^ lO^+i ^ j^ds{a{Sn);(j{S)) -^ 0. As a consequence, 

fc=0 

ds{a-{Sn),o-{S)) converges to 0. 

2. Let us prove that doo (iiSn) + En, «(5) + E) ^ 0. 

do. (*(5„) + EnAS) +E)= max{|(^(5„)fc + {E„)k) - {^iS)k + Ek)\ ,k = l...N,} 

= max{\{iiSn)k - i{S)k) + {{E„)k - Ek)\ ,k = l...N,} 
^ ■max{\i{Sn)k - iiS)k\ ,k = I . . . N,,} + doo{En,E) 
= doo{S°,S°)+doo{E„,E) 

l^d,{Sn,S)+doo{E„,E) 

= d{{Sn,E„);{S,E))^0. 

Proposition 2. Periodic points of G are dense in X, so G is regular. 

Proof. Let (S*, E) e X and e > 0. We are looking for a periodic point {S, E) G X 
such that d ((5, E), {S, E)) < e. Let E = E and Sn denotes the sequence defined 
by: 

' S^ = S'' Vfc :^ n 

5* = (N, . . . , N) if fc > n and fc = (mod 2) 

5^ = (-N,...,-N)else. 

Then ds{Sn,S) = ^ V ^°°('^";^'^ ^ i f^ ^ ^ ^ 
^ ' ' N ^ 10'^ N ^ 10*= 10" 

fc— n+1 k—n-\-l 

n ^ cx). So 3710 e INf such that 4(5'"o,5) < e. The point {S"'",E) is then a 
periodic point of X which is e-close to the given point {S, E). 

We will now prove that, 

Proposition 3. G is transitive on X . 

Proof. Let Ba ~ B (Xa, ^a) and Bb = B {XbjTb) be two open balls of X, where 
Xa = (5"^, Ea) and Xb = {Sb,Eb). We are looking for X = (5, E) G Ba such 
that 3noeIN,G"«(X) € Bb- 

Let k„ £ Z such that IQ-*^" s^ r^ < 10-*^"+! and (S*,-??) = G'=« (Xa). We 
define X — {S, E) as below: 



- V/c g |l,7V„l,^'^+'= = i-E'' + E%) X (0,...,0, 1,0, ...,0), i.e. the vector 
^feo+fc iiag i|;s components null, except its fc*'', equals to {-E'' + E'j^), 

With such a definition, X is in Ba and satisfies G^"'^^" [-^) ^ ^b- 

As G is regular and transitive on {X,d)^ we can conclude that G is sensitive 
to initial conditions (using the result of Banks [51), thus proving that G is chaotic 
in the meaning of Devaney. As a conclusion. 

Theorem 1. Spread- spectrum data hiding techniques are chaotic- secure. 

All the variety of SS techniques are concerned by this property of chaotic- 
security. In the point of view presented above, the choice of NW instead of ISS 
only affects the initial condition of the iterations of G. Indeed, the theory of 
chaos gives a global approach of the unpredictable behavior of a given system, 
but does not explain how to choose a good initial condition. For example, the 
reputed logistic map X° e [0, l],X"+i = 4X"(1 - X"), has a chaotic behavior, 
but if we choose X^ = 0, then Vn G IN, X" = 0... We believe that stego-security 
is helpful to determine the initial values: to increase the security level of a given 
scheme, we thus recommend to use a chaotic-secure algorithm with stego-secure 
initial conditions. This discussion will be deepened in details in a future work. 

4.2 Qualitative and quantitative evaluation 

As stated before, the proof that a given data hiding scheme is chaotic-secure, 
is just the beginning of the study. The next stage is to evaluate the quality of 
its chaotic behavior, by using the numerous qualitative and quantitative tools 
offered by the theory of chaos. These tools allow to compare two given chaotic- 
secure schemes, by deciding which scheme is the most unpredictable and thus 
must be preferred. To give illustration, some tools are recalled in this section, 
namely strong transitivity, and the constants of expansivity and sensitivity. We 
will use them to give a better understanding of the unpredictability of spread- 
spectrum techniques. 

Qualitative property: Strong transitivity 

Definition 7. A discrete dynamical system {X , /} is said to be strongly transi- 
tive if and only if, for any point A, B € X and any neighborhood V of B, uq G N 
and X £ V can be found such that f"(X) = A. 

We have the result. 
Proposition 4. {X, G} is strongly transitive. 

Proof. Let us reconsider the proof of the transitivity of {X,G): we have de- 
fined X e Ba such that G''=o+^" (x") £ Bb- Indeed, for this X, we have: 
Gko+N^ (x) =Xb. 



Quantitative measures One of the most famous measure in the theory of 
chaos is the constant of sensitivity defined in Definition 21 Intuitively, a function 
/ having a constant sensitivity equal to 5 implies that there exists points arbi- 
trarily close to any point x which eventually separate from x by at least 6 under 
some iterations of /. This induces that an arbitrarily small error on an initial 
condition may magnified upon iterations of /. The sensitive dependence on the 
initial conditions is a consequence of regularity and transitivity [5]. However, the 
constant of sensitivity can be obtained by proving the sensitivity without Banks' 
theorem. 

Proposition 5. Spread- spectrum data hiding techniques {X, G} have sensitive 

N 

dependence on initial conditions and its constant of sensitivity is equal to — . 

Proof. Let X ~ {S,E) ^ X, B ~ B{X,r) an open ball centered in X, and 
ko e'Z such that 10"''o =^ r < 10~''°+'^. We define X by: 

- E :^ E, 

- S'' = S'', Vfc e F such that A: 7^ fco + 1, 

- if S'^°+^ < f , then 5f°+^ = N, else 5'^'+^ = 0, 

SodiX,X)^D^iE,E) + dsiS,S) = + l^^^^^^ ^ ^ N 10^ ^ 

— J- ^ r. then X e B. Let us now define £ : X ^ XJS,E) ^ E. So 
£ {G'"'+\X))^ = £ (G'^o+i(X))jj, because E = E and S'' ^ S•^Vfc s^ko + l. As: 

- £ (G'=o+2(X))q = £ (G^°+i(X))p + S^"+\ 

- £ (G'=°+2(X))q = £ (G^»+i(X))g + S^"+\ 

_ qko+l c-fco + l > ^ 
Of) Jq 2"' 

We thus have d {G''°+^{X),G'">+'^iX)) ^ d^ {£ {G^«+^{X)) , £ {G''"+^ {X))) 
-^\£ {G^^+^{X))^~ £ {G^^^+\X))^\->.^. 

Let us now recalled another usual quantitative measure of disorder. 

Definition 8. A function f is said to have the property of expansivity if 

3e > 0, Vx 7^ y, 3n e N, d(/"(a;), /"(y)) ^ e. 

Then e is the constant of expansivity of /: an arbitrarily small error on any 
initial condition is always amplified till e. 

Proposition 6. {X , G} is not an expansive chaotic system. 

Proof Let e > 0. We define: X ^ {On^;{On^,On^, . . . ,On,,, . . .)) and Y = 

On^ ; {i:In, , ^2^^" ' ■ ■ ■ ' — 2 — ^^" '■••))' where On, = (0, . . . , 0) is the nuU 
vector of size Ny and In, is the vector of size Ny equal to (1,0,..., 0). Thus, for 
this two points, we have: Vn e M, rf (G"(X); G"(r)) «: e. 



4.3 Discussion 

Let us give now some consequences of this qualitative and quantitative evalu- 
ation. First of all, we can regret that spread-spectrum is not expansive. This 
property reduces drastically the benefits that Eve can obtain of an attack in 
KMA or KOA setup. For example, it is impossible to have an estimation of 
the watermark by moving the message (or the cover) as a cursor in situation 
of expansivity: this cursor will be too much sensible and the changes will be 
too much important to be useful. On the contrary, a very large constant of 
expansivity e is unsuitable: the cover media will be strongly altered whereas 
the watermark should be undetectable. Indeed, let us consider the same cover 
twice with two different watermarks. Thus d[X^ F) < 1 for the distance de- 
fined previously. However, due to expansivity, ^iu e IS[,d(G"'(X); G"'(F)) ^ e. 

Thus, doo(G"(^)i;G"(y)i) ^ £ - 1, so either rf^o (^i; G"(X)i) ^ i^, or 

rfoo (^i; G"(y)i) ^ . If £ is large, then at least one of the two watermarked 

media will be very different than its original cover. Due to strong transitivity, 
the set of watermarked media obtained when using a fixed watermark, is equal 
to the whole set of media. In that situation. Eve cannot reduce the set of media 
to studied, reducing so the interest of a Constant-Message Attack setup for Eve. 
The importance of the sensitivity has been explained previously. 

We will now discuss various consequences of the introduction of this new 
framework for security. Firstly, new comparisons can be done between given 
data hiding schemes, as it is illustrated by the following example. In a previ- 
ous work m, we have proven that a famous tool in discrete dynamical systems, 
namely chaotic iterations, satisfies the Devaney's definition of chaos and we have 
proposed various applications of this tool in information security [21], [12], [1]. 
These chaotic iterations can be used to realize a data hiding scheme, as it is 
explained in [3]. Qualitative and quantitative chaotic tools introduced in Sec- 
tion 13] can thus be used to compare this algorithm to the spread-spectrum data 
hiding schemes. It can be proven that data hiding schemes based on chaotic iter- 
ations are chaotic secure, with the additional property of strong transitivity, as 
it is the case of spread-spectrum. However, chaotic iteration data hiding schemes 
have a larger constant of sensitivity than spread-spectrum and contrary to this 
last, chaotic iterations are expansive (with a constant of expansivity equal to 
1). Moreover, chaotic iterations are topologically mixing, proving so that chaotic 
iterations appear to be more suitable than spread-spectrum to withstand attacks 
in KOA, KMA and CMA setup. All these claims will be proven in a future work. 



5 Conclusion and future work 

In this paper, a new concept of security for data hiding schemes is proposed 
as a complementary approach to the existing framework. This new notion of 
security contributes to the reinforcement of confidence into existing secure data 
hiding schemes. Moreover, it can replace stego-security in situations that are 



not encompassed by it. In particular, this framework is more relevant to give 
evaluation of data hiding schemes based on chaotic maps. 

In our approach, a data hiding scheme is secure if it is unpredictable. Its 
iterative process must satisfy the Devaney's chaos property and its level of se- 
curity increases with the number of chaotic properties satisfied by it. This point 
has been clarified in Section |4l in which a first study of chaotic-security is pro- 
posed using some qualitative and quantitative tools taken from the mathematical 
theory of chaos. 

We have shown in this paper that the intersection between the two sets 
of stego-secure and chaotic-secure data hiding algorithms is nonempty, due to 
spread-spectrum techniques. This establishes a first connection between the two 
approaches for security in data hiding. In future work, we will discuss with more 
attention this fact, to give a better understanding of the links between these two 
frameworks. The comparison between spread-spectrum and chaotic iterations 
outlined in Section 14.31 will be deepened. In addition, new tools taken from the 
theory of chaos will be introduced to enrich chaotic-security. Moreover, these 
tools will be compared to the Fisher Information Matrix and other information 
theoretic measures. The security of other existing schemes will be studied in the 
framework of chaos, to compare them to spread-spectrum and chaotic iterations. 
We will thus wonder whether chaotic iterations are stego-secure, or not. Last, 
but not least, the way to understand these chaotic tools in terms of data hiding 
aims will be deepened: this study is required to make chaotic-security framework 
really useful in practice. 
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